Add STACKIT to readme (#2988)

* Add STACKIT to readme

and sort CSPs alphabetically in sentences

* fix links

docs/versioned_docs/version-2.15/architecture/attestation.md

@@ -305,7 +305,7 @@ A user can [verify](../workflows/verify-cluster.md) this statement and compare t
 So far, this page described how an entire Constellation cluster can be verified using hardware attestation capabilities and runtime measurements.
 The last missing link is how the ground truth in the form of runtime measurements can be securely distributed to the verifying party.
 
-The build process of Constellation images also creates the ground truth runtime measurements. <!-- soon: The builds of Constellation images are reproducible and the measurements of an image can be recalculated and verified by everyone. -->
+The build process of Constellation images also creates the ground truth runtime measurements. The builds of Constellation images are reproducible and the measurements of an image can be recalculated and verified by everyone.
 With every release, Edgeless Systems publishes signed runtime measurements.
 
 The CLI executable is also signed by Edgeless Systems.

docs/versioned_docs/version-2.15/architecture/keys.md

@@ -105,7 +105,7 @@ Initially, it will support the following KMSs:
 * [Azure Key Vault](https://azure.microsoft.com/en-us/services/key-vault/#product-overview)
 * [KMIP-compatible KMS](https://www.oasis-open.org/committees/tc_home.php?wg_abbrev=kmip)
 
-Storing the keys in Cloud KMS of AWS, GCP, or Azure binds the key usage to the particular cloud identity access management (IAM).
+Storing the keys in Cloud KMS of AWS, Azure, or GCP binds the key usage to the particular cloud identity access management (IAM).
 In the future, Constellation will support remote attestation-based access policies for Cloud KMS once available.
 Note that using a Cloud KMS limits the isolation and protection to the guarantees of the particular offering.